General

  • Target

    cea813cbef6581e0c95aacb2e747f5951325444b941e801164154917a17bfe71

  • Size

    206KB

  • Sample

    201012-kkt6223kwj

  • MD5

    e883226589b32952d07e057c468ffbb8

  • SHA1

    3e424264572d0d986fa3ae49c98f566ba7d8e2d7

  • SHA256

    cea813cbef6581e0c95aacb2e747f5951325444b941e801164154917a17bfe71

  • SHA512

    9520111d2cab4c760ee6a91148265dc3fbd65f37688ed8a9aeed543fe99a565c4fe47f22abbf067d2d81ddd4cc69106a9fdba823d3a1af80882bce61dd312487

Score
8/10

Malware Config

Targets

    • Target

      cea813cbef6581e0c95aacb2e747f5951325444b941e801164154917a17bfe71

    • Size

      206KB

    • MD5

      e883226589b32952d07e057c468ffbb8

    • SHA1

      3e424264572d0d986fa3ae49c98f566ba7d8e2d7

    • SHA256

      cea813cbef6581e0c95aacb2e747f5951325444b941e801164154917a17bfe71

    • SHA512

      9520111d2cab4c760ee6a91148265dc3fbd65f37688ed8a9aeed543fe99a565c4fe47f22abbf067d2d81ddd4cc69106a9fdba823d3a1af80882bce61dd312487

    Score
    8/10
    • Blacklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v6

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Tasks